The Singapore Government has announced a new short-term bug bounty program to for external hackers to find vulnerabilities in nine key government-run websites.
Cross-site scripting, improper authentication and information disclosure were the top three vulnerabilities found by ethical hackers in 2018.
More than 30 security issues have been fixed in VLC, the popular open source media player, with developers praising an EU-funded bug bounty program for helping produce its most secure update yet.
Four months since going public with our bug bounty program, we dive into where we’re at, what success looks like, and what to expect down the road.
Imagine crowdsourced security, with thousands of people dispersed in every time zone, available to warn your company of vulnerabilities within its websites, mobile applications, APIs or IoT devices.
Trend Micro’s Zero Day Initiative (ZDI) is asking researchers to focus on server-side vulnerabilities through a new bug bounty addition.
Though enterprises were once tentative about using so-called bug bounty programs to detect vulnerabilities, researchers are proving to be effective and trustworthy partners in assessing security risks.